Log in

README.txt

File contents

Hotfix_2001-07-25
This is a "hotfix" product. Hotfix products can be installed to
incorporate modifications to Zope at runtime without requiring
an immediate installation upgrade. Hotfix products are installed
just as you would install any other Zope product.
This hotfix addresses a potential denial-of-service vulnerability
in applications that use the Python cgi module (cgi.py) for parsing
of "multipart" Web form data (Zope uses this functionality
internally).
More detailed information is available in the Python bug tracker at
SourceForge:
http://sourceforge.net/tracker/?group_id=5470&atid=105470&func=detail&aid=443120
While we are not aware of any instances of abuse of this
vulnerability, we *highly* recommend that any Zope site running versions
of Zope up to and including 2.4.0 have this hotfix product installed
to mitigate this issue. (Zope 2.4.1 will not require the
installation of a separate hotfix).

Copyright (c) 2011 Zope Foundation. All rights reserved.
Legal | Contact
If you can read this text, it means you are not experiencing the Plone design at its best.
Plone makes heavy use of CSS, which means it is accessible to any internet browser,
but the design needs a
standards-compliant browser to look like we intended it.
Just so you know ;)